This PR adds functionality to derive additional secrets for an existing one without the need to encrypt an additional value.
age.secrets = rec {
regular.file = ./secret.age;
derived = regular // {
derive = {
# will be concatenated with secret and hashed, the hash will then be used as seed for an RNG
path = "test"
# filter to be applied to the RNG
filter = "A-F0-9";
};
};
};
This PR adds functionality to derive additional secrets for an existing one without the need to encrypt an additional value.
TODO: